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WHAT IS CLAIMED IS: 

1. A person authentication system for executing 
personal authentication by comparing templates with sampling 
information input by a user, the templates being personal 
identification data acquired beforehand, the person 
authentication system comprising: 

a personal identification certificate authority which 
generates and issues a person identification certificate 
having data items in accordance with a predetermined format 
and storing template information including the templates; 
and 

an entity which acquires the person identification 
certificate and which executes a person authentication 
process on the basis of the templates of the acquired person 
identification certificate. 

2. A person authentication system according to claim 1, 
wherein the person identification certificate issued by said 
personal identification certificate authority includes a 
digital signature added by said personal identification 
certificate authority. 

3. A person authentication system according to claim 1, 
wherein the person identification certificate issued by said 
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person identification certificate authority includes, as 
indispensable data, an identifier capable of identifying the 
person identification certificate and identification data of 
the person to be authenticated on the basis of the person 
identification certificate. 

4. A person authentication system according to claim 1, 
wherein the template information is encrypted using a public 
key of said personal identification certificate authority 
and stored in the person identification certificate to be 
generated by said personal identification certificate 
authority. 

5. A person authentication system according to claim 1, 
wherein the template information is encrypted using a public 
key of said entity and stored in the person identification 
certificate to be generated by said personal identification 
certificate authority. 

6. A person authentication system according to claim 1, 
wherein the template information is encrypted using a common 
key and stored in the person identification certificate to 
be generated by said identification certificate authority, 
the common key being encrypted using a public key of said 
entity and stored in the person identification certificate. 
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7. A person authentication system according to claim 1, 
wherein the template information is encrypted and stored, 
along with corresponding encryption algorithm information, 
in the person identification certificate to be generated by 
said personal identification certificate authority. 

8 . A person authentication system according to claim 1 , 
wherein the person identification certificate generated by 
said personal identification certificate authority stores 
personal information data of the person to be authenticated. 

9. A person authentication system according to claim 1, 
wherein the person identification certificate generated by 
said identification certificate authority stores, as a 
public key certificate information of the person to be 
authenticated, identification data of a public key 
certificate of the person to be authenticated. 

10. A person authentication system according to claim 
1, wherein the person identification certificate generated 
by said personal identification certificate authority stores 
link information linked to a public key certificate used in 
data communication or data processing which is executed on a 
condition that the personal authentication is successfully 
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executed on the basis of the person identification 
certificate . 

11. A person authentication system according to claim 
1, wherein the templates stored in the person identification 
certificate include at least one of fingerprint information, 
retina pattern information, iris pattern information, voice 
print information, and handwriting information which are 
biometric information, and a seal, a passport, a driver's 
license, and a card which are non-biometric information, or 
include a combination of at least one of the information and 
a password. 

12. A person authentication system according to claim 
1 , wherein said entity is a service provider that makes a 
deal with a user who has been identified on the basis of the 
person identification certificate, a user device accessed by 
a user who has been identified on the basis of the person 
identification certificate, or said person identification 
certificate authority. 

13. A person authentication method for executing 
personal authentication by comparing templates with sampling 
information input by a user, the templates being personal 
identification data acquired beforehand, the person 



- 221 - 



identification method comprising the steps of: 

generating and issuing, at a personal identification 
certificate authority, a person identification certificate 
that has data items in accordance with a predetermined 
format and that stores template information including the 
templates ; and 

acquiring, at an entity, the person identification 
certificate and executing a person authentication process on 
the basis of the templates of the acquired person 
identification certificate. 

14. A person authentication method according to claim 
13, wherein a digital signature of said personal 
identification certificate authority is added to the person 
identification certificate to be issued at said personal 
identification certificate authority. 

15. A person authentication method according to claim 
13, wherein the template information is encrypted using a 
public key of said personal identification certificate 
authority and stored in the person identification 
certificate to be generated at said personal identification 
certificate authority. 

16 . A person authentication method according to claim 
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13, wherein the template information is encrypted using a 
public key of said entity and stored in the person 
identification certificate to be generated at said personal 
identification certificate authority. 

17. A person authentication method according to claim 
13, wherein the template information is encrypted using a 
common key and stored in the person identification 
certificate to be generated at said personal identification 
certificate authority, the common key being encrypted using 
a public key of said entity and stored in the person 
identification certificate. 

18. A person authentication method according to claim 
13, wherein the template information is encrypted and stored, 
along with corresponding encryption algorithm information, 

in the person identification certificate to be generated at 
said personal identification certificate authority. 

19. A person authentication method according to claim 
13, wherein a personal information data of the person to be 
authenticated is stored in the certificate identification 
certificate to be generated at said personal identification 
certificate authority. 
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20. A person authentication method according to claim 
13, wherein identification data of a public key certificate 
of the person to be authenticated, as a public key 
certificate information of the person to be authenticated, 
is stored in the person identification certificate to be 
generated at said personal identification certificate 
authority. 

21. A person authentication method according to claim 
13, wherein link information linked to a public key 
certificate used in data communication or data processing is 
stored in a person identification certificate to be 
generated at said identification certificate authority, the 
data communication or data processing being executed on a 
condition that the personal authentication is successfully 
executed on the basis of the person identification 
certificate. 

22. An information processing apparatus which executes 
personal authentication by comparing templates with sampling 
information input by a user, the templates being personal 
identification data acquired beforehand, the information 
processing apparatus comprising: 

storage means for storing a person identification 
certificate which has data items in accordance with a 
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predetermined format and which stores template information 
including the templates; and 

processing means for verifying the person 
identification certificate, acquiring the templates from the 
person identification certificate, and executing a person 
authentication process on the basis of the acquired 
templates . 

23. An information processing apparatus according to 
claim 22, further comprising encryption processing means for 
decrypting encrypted templates stored in the person 
identification certificate. 

24. A program providing medium for providing a 
computer program which executes, on a computer system, a 
person authentication process for executing personal 
authentication by comparing templates with sampling 
information input by a user, the sampling information being 
personal identification data acquired beforehand, the 
program providing medium comprising the steps of: 

generating and issuing, at a personal identification 
certificate authority, a person identification certificate 
that has data items in accordance with a predetermined 
format and that stores template information including the 
templates; and 
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acquiring, at an entity, the person identification 
certificate and executing a person authentication process on 
the basis of the templates of the acquired person 
identification certificate. 



